There are multiple vulnerabilities in IBM® Runtime Environment that are used by IBM Rational Directory Server (Tivoli) and IBM Rational Directory Administrator. These issues were disclosed as part of the IBM Java SDK updates in October 2016. New product iFixes do not include the JRE. Install an updated JRE and a new iFix to resolve these issues.
CVE(s): CVE-2016-5554, CVE-2016-5542
Affected product(s) and affected version(s):
Rational Directory Server (Tivoli) v5.2.1 iFix 8 and earlier
Rational Directory Administrator v6.0.0.2 iFix 3 and earlier
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2kBbe0F
X-Force Database: http://ift.tt/2eDqzaq
X-Force Database: http://ift.tt/2e5s2Ku
from IBM Product Security Incident Response Team http://ift.tt/2kB7rwk
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.